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Abstract of JP 2002319936 (A) 

Translate this text 

PROBLEM TO BE SOLVED; To enable header compression in the case of mobile communication by 
selectively encrypting data and generally applying them to an application on a UDP, SOLUTION: Each of 
parameters indicating encryption except for a header together with an encryption algorithm or the like 
is shared with opposite apparatus by communication by a parameter sharing part 34 and while using the 
shared parameter, an identifier for data identification to an entire RTP packet from an application part 
31 is calculated by an encryption/identifier adding part 33. Then, the identifier is added to the RTP 
packet and the data of a part except the header are encrypted and outputted to a transport part 32. In 
this transport part, a UDP header is added to a non-enciphered RTP header and a UDP packet is 
generated and sent to a network part 35. 
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A paraineter .'ihariag part 34 psrforn.i«, by ajmnras-iicatkni, 
Tjrooe.vsing ibr -siiaring an enciypijijn algorilhtn and param- 
eiers indicative of fiiicryplion of da!a except a header mth an 
apparauvs of iJje other party; an encryptian/aatlieaueator 
adding part 33 eaU-u!atcs the shared paramoiers an authtn- 
ticatot for data aulhensieation of an RTF packet in ils entirety 
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the RTP packs!, shen encrypts is excepr its beaded, and 
outputs the packet to a iraasport part 32; and the traasporl 
part adds a UDP header IQ the said nori-sncryiitcd RTP 
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pan 35. 
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AND MKTHO!) 

IBCHNiCAI,- HELD 

[O00I.J Hit: presto! iiiveiitioa reiutes to asmmuaicanon 
apparafas snd mcihod iha! provide data flecuriiv a-ii;aansl. 
1 3\t-iA''- ppiiig and 1 h h^d! aa t-v tn^n pt uii aisri aulent 
cauoa ot ibe transuiissioo data. 

PRIOR AST 

[0002] !P (Trturna Pfr ooU n ii^oikt, '^y^nd b> thv 
Ift. £Ai i!K cot mur^tilh e ^uajptd v*. If: ci, rl> !t dtu 
It no prevention measures are wzcn, it would be posiibit to 
tuvf«lrtip 3jsd modify the cameniA oi. commumcaljgD witii- 
iuousifjii it«; notice of tfic partjes concerned with the 
coramnmcauoii oy the acquisition or alierafiot] oi the IP 
pats,et durB0^ transmissioti. Iherelore. secuni-V protcc'ttoa is 
cracial !or tfae traasmisssoB and receplion of itnportan! 
mtormatfors nhoui business ti-ansacuorivS or tJ.;c like on the [P 
network, 

l(H)03] fof example, m ajDteni deltvery services that 
dehver ii5ussc arid video through tfae intor.net- ihe ornsic and 
vsdeti dala to be dehvered a.re vaiiiable sjrspotiant iBtorma- 
tion and seed to be pr<»!eetcd agamst interception and 
M.sijn;ation diuma iransiiiKsioa, Ana, la ibe VoIP sv'siem 
thai C'ttcrs Icltjiiione .services throuya the IP network, it is 
iiecessarv to prevent lOega) cavesdfoppma ot the contents of 
commiiiiicaiion. 

[0004] 1h the VoIP svsttm and )n a sireaj.nmg conietii 
ueliveiy .sv&tem, R!P/Ui:)P is coramoniv UE,ed as shown m 
ilir, lA for the transmission oi data requii-ed to be reai- 
tifiie. Rl? (Real time Transport Ptnfocol) is a ptotocTjl that 
tsuseJii. n ijrpj tdi oiU>{! 11 md IV m adk torrtd! tf&i^ 
tij ices ny l)W 1,1 s. r r a aj.-jam Fi\ 'ut il) s d ^ojjntiiiO i 
pi-ototxii that 1% used sn a transport laver 12 which is an 
interface between die appbcaijon layer 11 and a network 
layer 13. 

{(HHiS] A transmtssion packet accordiiia to this system 
comprises, for e.icample. as shown ju HO. 2. sn IP header 
13H a UDP hedJe-- IZU m RIP heidu UH a id du RfP 
f Hini ' HP< Since RIP UDP i-, tutnded for real tine 
paciict tr3t»nu.ss.ion rathi^r than for ensuring packet, trans- 
missu.in like 1 LP ( 1 ransmitson Control ProtocoL a conaec- 
tiOil-tvpe pfotocol that sa used sn she transport kycr). there, 
IS a possibiUiv of the occurrence of a packet ioss aunni; 
ir^n^nji.- cti ' r tf-ja e^son Jita'urts j_,aiu l the pacltt 
lass stiomd be iukeii inio account on the occasion ot stud vsue; 
the .secuntv .scheme for application to RiPAJUR 

jOOfifi] Piinher. it i,s also imporiasit to appiv .seasnty tech- 
mcucs to mobile comromicauons sjow qiiick.l7 spreading, 
tor kiRiOOP packet Iraosnjissioi) m a mobile communica- 
tion i3et\oi-\ he ilers a' h >\b tbt RiP ^aeks.t tUlP 
heidtr+Rli pavi^dt md the UDPpacKe (UDP h.ddtr+ 
RIP packet) compressed iti a radio link with a view to 
itnp I ^ ink. ihe uali,.-itn. n cfLvicjiv tii <h. lad't raiMii s.-.ion 
oaiid. Acct-'rottisslv, ii is to be wrsheu thai the security 
.Scheme, especiailv. the cjjcrYpnoii system be one that allows 
header expa!).sioti.'compfessioa ot the RTP.TJDP packet in 
linn.s ha.Ltway throagb trafismission. 

[(M]07j /Vs a secure R i p packet tran.sfnrssion system tor 
application to mobile corauiumcation tietworKS. Secure k J P 



(SRjP di^h letf <!%t '-np m l\t>!lj-,t-tenTir(,posed h\ 
11; ! h (Internet Ensjitteerma .lask Force). In .SRVP there have 
b^tj intioduced i seicvatt. ejvfvptin svstfij. li « a'l. 
heaoer coKipres.sioa md an encrvutioo .svstem f£i.at lessens 
tbi iidkicrccd istpau el (ossiniti. t TImI i- ihcKtP 
packet IS processed, as depicted us tRj. 3, bv encrypiiBg 
only the RIP payload IIPI... and generating and addiii" a 
data ai!thBtst!calio.n code (audieiKicaton llA to the 
encrypted RTP pavload IIPL and ihe RTP header IIH so 
taas the vahdiiy ot data ot the iilp .header UH and ihe 
encrypted RJPpayload llPLcao be vermed. Ihis tecbmoue 
perimts efOcien! protecuuu but Rf P-specihc. 

[mS] Tt.at is, Scciire RTP tiecessitates the use of an 
RrP-specific encrvption algofiShm and cacTvpuon param- 
eter, and hence it cannot be utilized for apphcatioiM and 
Iriuisport protocols on other UDP svslons. Since its i«clective 
encrvptton parameter and encrvption algorithm are tixcd. 
secure ,RTP cannot deal with new protocols anci hence st is 
not ,suir.ed to content delivery that makes rapid progress. A 
st^uH\ hraque Hi-LUli /ed .ot pa tKid^r aOphc itii n, is 
roenlioned above, rs uot oreterable Since it is aeccssarv' to 
.studv an indivional secuntv technique eacn time a i!e%v 
applicatioii IS developed. Further, aiibouah lae secuntv 
technique is not perm.^netit, Secure RIP has its eacrvtition 
.algorithm kxeo and hence raises a problem in terms of 
sccurltv, 

{mm] On the other hand. SSL f-Secure Socket Layer) 

I Tt>L) IS .low Widely usees 3.s a secuniv technique on the 
fnternet. When St>L(TSL) ls not used, appiicaftons in layer 

II su^h asH"TP{HvT fit\t ti^asiei Proto^in 1 IP (i ic 
franster proloctjl) and ielnet (retnole ic*a:-in>, arc e-onnected 
d,irect!v to a ICP or HOP transport laver J2 as shown in 
Mix. 4A. In cofitrasi thereto, SjSL is a setairity protocol that 
IS located oetween the )t,P or UDP tran.'ipoil: laver 12 and 
the apphcatioii layer II as depicted m hiii. 48. SSI. 
provides a .■secure data iransinissKsn service to the applica- 
1 on li CI h pi riorum::; som^ stciint. i nei ssin^ ui drfiu 
txsat ts sent and received tiitosiah siliiization ot the data 
ti^nsTi ssion t J ivtion ifli tvd h, TCP ( r UUP Theretort 
there is no Jiimtation lo applicauon and encnritjon aigontiim 
to be uliliied. ,SsL is in wide us; particuiariy lor an KTIP 
.■;essi0sj m a Web access, but li can also be used ver&Eitilv lor 
other apphcalions oi p fP .and JelneL Moreover, there is 
proposed, sin a rnodiried version of S.Sl, fof mobile comma- 
aication use. WTl^b {Wireless Tran.sport Level Security) 

tmd oi/eo ui tU \V''P (Wuii s- \T>ph^at on Prdtocil) 
i-orum. 

[OOlOj ■^bl and VfTI s s i tt J > ha^e a nvi iaytr w r 
figuration a.s depicted m f !G. 5, f he orotocol that i.s used in 
the lower iaver 1IS2 in the two-iaver configuration is cailed 
Record Protocol, and it oiTers faci!iue.s tor eticrvpiina pro- 
tocol data of the upper layer IISI and adding a data 
authentiCEiiiOa code |MAC). Th« upper laver .llSl in the 
two-layered coniiiairattOB of .SSL aintasns lotir kinds of 
protocols, a handshake protocol HSP (HandshaJie ProiocoO. 
an akit protocol A\J? (.Alert Protocol), a change cipher 
protocol CC:P i^C.haiige cipher Protocol) and an .application 
data crotocoi /vUP (Application Data Protocol. Tlic hand- 
shake protocol HSP possesses tietiotiation iaahtv oi an 
encryption/data authentication .scheme and temanabseiS'er 
atithcnticatitsti; the alert protocol ALP pos.sssses -m event 
ana error indicating facditv; and the change cipher protocol 
C-CP pos-wsses a tactbiv of validatma; a.t negotiated ancrvp - 
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ticin/au'tbentjcahfiii sclierue. 'i'hc applicauon data protoco! 
for iBdicatiag the star! of encrypted conimunicatkia lo me 
other party is to iransparcntiy send and receive upper-layer 
appiicaticsr! data; HTl'P or FTP tJala in the sppUcsbon hyuT 
H is provided via this prolGco) to im record prttocoi 
(Record ProiDcoJ) 

f OOllj F!,G. 6 shows an cxafnpk of the data cotjfiguratioc 
that is sent and received bsrwwn record protoeois (Record 
Prolocois) of the stnditjg and received sides. In a Iwader 
20(1 Ehcfc are coistaiiied m identifier (Protocol type) 21 
indicaling the kinds nf uppcr-kyer protocols (sisch .is hand- 
shake, akrt a.^d application data), an SSL version (Major 
VetsioB, Minor Version) 22, atjd data icfjgths (Leagtb (high). 
Length (row)) 23A and 23B. A payload 24 is encn-ptect 
upper-layer protocol data; the encrypted data 24 contJiitjS a 
data content (Content) 24Aand an amheniicalor MAC 24B 
for verilying the. validity of liie dsVA coirtent and the header, 
lliis configuration is applied to all protocois that iitiiiTe the 
record protf.tco! 11S2, incitiding ihe application data proto- 
col. Aceordiflgiy, .in the case of traasmittmg the RTF packet 
by U.S6 (jf SSL, the header and the payload m liieir entirety 
are encrypted and mapped iato the payioad 24 of the record 
protocol data. 

[6012] Whesi tlie header of the record protocol is added to 
such an eiicrj'pted version of the whole R')T packet or the 
RTP packet, it is impo.5sibk to perform RTP header com- 
prcs-fitm diiring tran.smisfticin. "Fliat is, since the header 
compression i.s jwforjBed coliectively for the RTP header, 
the i?DP header and the IP header arranged one after another 
as depictetl m t'lG. 2, if a rcaird protoaj! header 10 is 
ifj.'ierted bef«.'een the RTP header and tile UDP .header, ihey 
cannot colicclivcly be data-ctjimpres,sed. For ibis rea-son, the 
applicatioa of .SSL.AVrSL to the RTP packet protection is 
not desirable in tnobile commuisicatioris. 

[0013] In common data corismimicatiofi.s, too, it would be 
convenient if oaiy a particislaf portion desii-ed to protect 
could be secured by encryption or authentication for veri- 
fication O: its vahdily, but il has beea dit^asli, to adaptiveiy 
provide scciiiily. 

[0014] An object of the present invention is to provide a 
dala-securing corrimunication apparatus and raethod (h.at 
permit comrrjunicatioti wish only p.art of input data .selec- 
tively secured, 

DISCLOSURE OF THE INVENTION 

[OOlS] According to the preseut invetttioa, the conamuiji- 
cation apparatus at the sending .side shares parameters 
indicating a securing target of innut data wth a data- 
securing coromunic.ttion apparatus at tiic receiving side via 
a communicslioociianneL and sekctivdv .secures pari of the 
input data according to the sJiared paratiieier, thereafter 
cutpiitting the data. 

BRIEF DESCSIPTIOK OF THE ORAW'SNCsS 

[OOlft] WIG, lA is a diagram showing processing that does 
i30t tisc Secure RTP. 

J0017] FIG. IB is a diagranr .showirjg piwce&siisg that uses 
Secure RTP, 

[OOlS] FIG. 2 is a ciagrarn depicting sn example of pacicet 
configuration. 



[04)19] FIC 3 is a diagram depicting data contiguratioB of 
a selectively encrypted packet. 

[0t>2()] FIG. 4A is a di.igram .showiag application data 
processing that doe.s not u.se SS!...'WTLS. 

[0021] FIG, 4B IS a diagratu showsjii; application data 
procss.siog that uses SSLAVTLS. 

[0022] FIG. 5 is 3 diagram showing partiPilars of the 
SSL'WTLS layer. 

[0023] FIG. 6 is a diagram shoxviug the configuration of 
record protocol data processing by S'SL-WTLS. 

[0024] FIG, 7 is a diagratn illustrating the faoctional 
conijguratioD of ars embc>difflent of this ioveniion apparatus 
a-fsd an example of ilie system oDufiguration in which this 
invention app,iratiJS is used, 

[0025] FIG. S is a diagram showi.ng esaniplcs of eiscryp- 
tion pa.raiTieters. 

[0026] FIG. 9 is a llowchan showing an exa.iBpie of an 
enciyplioii range sharing procedure at the transrjiiittint; side. 

[0027] FIG. .10 hi n flowchart showing an cxampk of an 
encryption range .sharing procedure at the receiving side, 

[0028] FIG. 11 is a flowchart showing an example of the 
procedure of tm cncrvplioa/autbei-ilicatox sddina part 33 in 
FIG. 7. " 

[0029] FIG. 12 is a diagram depicting an example of the 
daia configti ratio, 1 of the cjutput packet .from the encryption/ 
aatfeenticator adding part 33. 

[0030] FIG. 13 is a iiowchajt showing anolJie.r exampic of 
the procedure of the encryption,''authcniicslor adding part 33. 

[0031] FIG. 14 is a Ikwchart showing m exampic of 
procedisre of this invention method. 

[0032] FIG. IS is a diagram illustrating ibe functitieal 
coafiguration of a second embodiraeni of this inventica 
apparatus, 

[0033] FIG. 16 is a diagram illustrating the fanctiosial 
conllguration of a third embodiment of this invention appa- 
ratus. 

BF:ST MODE FOR CARRYINf5 OUT THE 
INVENTJON 

[0034] FIRST EMBODIMENT 

[0035] FIG. 7 illustrates a first embodimctit of the present 
invention and the general outline of a data iianstuissioa 
system usiijtg the ernbodinient. 

[0036] A daia-s«.ci!f,ing communication apparatus 30 of 
the present invention, for e.xarrsple, at such a tracsaiittiag 
side as a seiver or dat.t lennina) and a data-securing com- 
miinicatioa apparatus 40 of the pre.sent invention similarly at 
such a receiving side as a server or data ierniinal can |je 
t-onneciKt! via a communication network SO. The eximmii- 
aication netAvork50 is sho wn as one network, bu t .it may also 
be formed by plnra! networks such as a combinaticm o! a 
pitblic comtnuEiicalioti network and the Irilcrnef. 

[0037] Tije data-securing communication apparatus 30 in 
this enibodimeni has, as securing means, an encryption/ 
auiheuttcator adding part 33 bct^veen an appiicatsoa part 31 
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tiacl a transpori part 33. And. a parameier sharing psn M is 
provided as ,irt tipper hyti of the transport part 32. The 
iranspor! pan 32 a TCP or UDP itmctioo aac! is con- 
nected, tor exajnpie, t(s a network part 33 equipped with an 
IP function, and the network part 35 i.s connectai to a 
iratKmiliing-rcccivirsg pan 36 ibal is ;i phy-sicai layer, and 
[hi; tx-ansmiRifsg-fs.-eeiv!tig part 36 ia connecied to ifie coiit- 
tminication network 50, 

[O03S] Tfitt daia-securing asmmunicatioa apparatus 40 is 
sutetiintinliy identical in cotitig\iratioi) \viib the data-secur- 
ing t-ornjBurrieation apparaa)s3§; that it,, it is provided wjtb 
an apptiration pari 41, a rr,an.sport part 43, a aetwork part 45 
arjd a traasmftii0g-receivij)g part 46, aad in this eitihod!. 
mcni, s detodiag/vtirififatitjn part 43 k provide as securing 
mean.-;, and ,i parameter sharing part 44 is prrsvidra as an 
upper layer of ihs tran&port part 42, 

[0039] Prior to the traasruis-MotJ of application data from 
the application part 3i, the communication apparatsjK 3(j 
negotiates with ihe coualerpar! ajiparatus 40 about param- 
eter necessary for data security, tiial is. parajjietei-s neces- 
sary for encryption proces,sing.''dai3 authenticaior (code) 
generation processing, and shares tliese paratneters with the 
counter part apparatus 40. The parainelers are. infottiiatiott 
for specifying which of algorithnts .N'liii, DBS, 31>F.S, RC4 
aad so on is used; secret inlorcnatioij for key generation; 
random values for cncrv'ption/decryption or aulhentieation/ 
verification in the cotntminication apparavus 3fi (for 
example, a setver apparatus) md the cotttmunicalion appa- 
ratus 40 (for example, a client apparatus); the range over 
which to encrypt trarisniission data; and tiic range of data 
authe.rsticalion. 

[Q<)40] Tej this einbtKluttsnt it is particuiatly itBpottatil that 
ibe parameters for specifying the range of esjctyptiorj and the 
raijge of data atithentjcation are newly provided as shared 
paratnelcrs, and the other paramefers .are sh.ared in the same 
way as that for sltared para.metets used ia securing protocols 
by conventional SSL (TSL) scheme; sharing of these paratii- 
eiets isptrforraed fay intefcomniunication between tite cfjin- 
niimicntion apparatuses 30 and 40 via the communication 
channel as is the C3.«; with conventional SSL scheme. 

[004ij ]n this case, the newly shared paratneters which 
indicate the seciiring target of data to be transmitred — the 
range of encrypiion. aad iiie rangs of data auihensication in 
this exaroplc — .are i.r-!form3tion for determining ihe range 
over which it encrypt and autheniicste tiie input data packet 
(dan packet from the appljcauon pari 31 in llits example), 
atsi Yarions methods are po,s.sib!e for specifj'ing the range; 
for example, information "sta.ft encrypiion at such and .such 
a byte frryrn the beginning of ihe packet" i.-s used lo speoifv 
th* range, 

[0042] Further, the range of encryption artrS the range fjf 
data suthenlicatiot: are determined according to the kmd of 
input data, thai is, the application in ibis ctanriplo, or 
according us the iransmissjion characteristics (such as the 
Sraii'itnKsion rate, delay char.ieleristic, iransmiffikm wrof 
char,ic!er),s!ic, attcntnlion characteristic, frequency charac- 
Krisiic and dislortitjn characlen'.siic) of the comfflunication 
nenvurk SO io wlijch tiw totumunicaltoi] apparslus 30 i.s 
connecied. 

[0043J The parameter .sharitig part 34 of the communica- 
tion apparatus 30 determines &h.iring of the parameters 



indicafive cf the ssci.tring target, for e,x3.aiple. by ibe pro- 
cedure febown in FRr. 9. Ofi receivitig a request for 
encrypicd communication (Si), the pararneler sharitig part: 
makes a check to stc if the input data application packet is 
an Rl'F packei (S2); if it is an RTf> packet, snakes a check to 
f,ce if ihe Ltitumunicatirjn neiwork 50 to which ihe app,<iratiis 
30 is eonnecied is a network of law transmission rate, for 
example, a mobile comiaufiication network (S3); and if it is 
a mobile comrounication network, transmits to the other 
eomrtiuijieaiion apparatus 40 cncrvption.^autheniicatitsn 
parameters indicating seiecrive encryptifjn of the IXTP packet 
(indicating, for example, that the R'JT header at the fiegin- 
ning cf the inpii! data is excluded fixim enavptioa) (S4). At 
this lime, oLher parameters, such as the encryption algorithm 
and the data authcnticator generatian algorithm, are also 
sent. 

[0044] On the other hand, upon receiving the encryptioa'' 
aiitkejitieation pafaaieters from the cotumunicalion appara- 
tus 30 (SI) s.s .shown, for exsmple. in FIG, 10, liie parameter 
sharing part 44 of the corainuEueation apparatus 4ft; makes 
a check io sec if the received Encrs--ption,/au!hcnticatit)n 
parameters are those for ,Ss;isc!ive encryption of the RTP 
packet (S2); if set, determines that the eacryptioa'autfienii- 
cation parameters in the parameter sharing part 44 are tliose 
ibr RTP packet se.'eclive eBc^pSson (S3); and s«nd.s ibe 
determined encryptittiVauthcnticatioti paratBcters to the 
coiamiinication apparatus .30 (S4). 

[(MMS'j On receiving frosn the Comniunication apparatus 
40 the ener>T}Sion;'authcnticarion paiameter.s indicating RIP 
packet selective encryption (SS) as shosvsi in FIG. 9, the 
parameter sharing part 34 of the commtsnication apparams 
30 determines ihe cncryption/aiiihentication parameters as 
the targes of RTP packet selective encryption (S6). In this 
way, ibe both paramclef sharing parts 34 and 44 share the 
RTP selective eaeryption as the encryption.'atiibeniication 
paraaiieiers via the corttmunicaitori channel, Incideataliy, the 
encryption aigorithtr! and other parameters are similarly 
determined at tiie same time. In thk in.stante, as is the case 
with conventional SSI,, for instance, .several candidaies for 
each ptsrameier arc sent to the apparatus 40 for determina- 
tion. 

[0f)46] In FIG. 9, when it is decided in step S2 that the 
input data is not an RTP packet, or when it is decided in step 
£>3 tisai the traiKtni'ision rate of the comimrnicauon network 
sft, to which ihe communication .app.iratils 30 is connected, 
is high, the coniKturiication apparalifj sends ia the couttier- 
part 40 encryplion/'aiithenticalion pararneleix indicating 
encr>'ption of ibe vrtiole input data (packet), that is, indicat- 
mg noa-selec(;ve encryption (S7). 

[0047] As depicted in FIG, 10, when it i-i decided in step 
S2 that the encryption.'aiilbenticatiGn parameters are not for 
RTP packet selective encryption, the paraineter .sharing part 
44 of the coramunicaiion apparatus 40: decides whether the 
inpsit data (app.lieation) from the app!jva.lion part 41 of the 
corairiunicafion apparatus 4(1 is an RTPpackei (S5); if it i.s 
an RTP packet, makci a check to see if the comtiiunicahion 
network 50 to which the communication apparatus 40 is 
connected Is, for example, a tnobile coramunjcaiioa network 
of low trausm.issioa rate (S6); .and if so, goes to s.iep S3, in 
which it determines the encryplion.'anShenticalion param- 
eters indicating RTP packet sel&:tive e ncr>'pti(fn and rwnds it 
to the coTOmunication apparatus 30 (S4), When it is decided 
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in step SS lhat ihe input daia is mi an RTP packet, or when 
i! is dcdtkd in &!ep S6 tiiat the comniUiiicalion network 50 
is no! <i mobiie commBnicauoii net^'orii wiiosc ustKinissioEi 
rate is not knv ($6), the paraaister sharing par! determines 
cncfypiiontauUiciiticatfoti pararaelers ifidicating iJon-scSec- 
tis'6 eticryptksn (S7), and scntte ibe paianieters !D !be com- 
mufiicatioii apparitus 30 (S4), 

[O04S3 /Vs depicted in FIC. 9, upon reccivicg the encr3'p- 
tion/autbfufication parametere irom l!ic cofEimunication 
appar.iras 40 (SS) after the transmi&sion in step S7, liis; 
patamcter stiaring pari 34 of ihc coErimutiicalion apparatus 
30; makes a check to see if the received cncryplioa/aiithen- 
lication parameters are lijose for RTP pacitei selective 
encryption fS9); if so, goes to step S(>, in which the piirarn- 
eter sharing pan deieiiranes the encfyption/autheaticatioa 
parameters as those forRTPpacket seSeeiivc eneryption; and 
if siol ibr RHP packet selective eneryplion, determines )he 
eneryptlon/aijlheaticatiori parameiers as those for uois-seSec- 
live encryption (SlO). 

[0040] in this wsy, the paramcief shaiiag parts 34 and 44 
can sliare tile raage of eiscrj'ptioR via the comrounicaLion 
clwatisi!. The range cf amhentiealion is set to iK the whok 
input data irrespective oi sJie input data (application) and 
itidepciidcnlSy of the transmission characteristic ol' the com- 
municaiiori network 50 to which the comsiunication appa- 
ratuses 30 and 40 are connecied. The range of encryption can 
be .specified not only as to wliclher to exclude tije header 
from encryption bul also as desired For example, when the 
input data is itnags or audio data, it is ai;iO possible to limit 
the range of autheaticaiion specifically to an important 
portion which, if ios! would make decodirig impossible. In 
either case, the cacryptioa algorithro and other paranieicrs 
are abo aibjected to sharing processing simuhancousiy wiJti 
sharing of the range of eflcryptiosi, 

[0050] When the pararaeters .ire shared as desaibed 
3lx>ve, they are provided to the ericryptiofl/amhenticator 
adding part 33 and the decodiog/Vcrificaiion part 43 from the 
paramelei sharing parts 34 and 44. respectively. 

jOOSl] lil^ i.n>. >pti 'n lij htj'icitor iddint, part 3"^ pti 
forms encrvptttsn.auihenttcator addttst? proce-ssms. An 
cx,implc tii the protedijfe iheretor is shown la HG, U. 
When laout from the upper appiicauon pan 31 (SI), a data 
packet is tran.sparesitiv input to the cncrvption/aulbcndcator 
adding part bv tin appSicaUoti data protocol ^t^2), and an 
■luthcnticator is generated bv a shared aitthentscator gener- 
ating alaonthm.'aitiiiemicator Generating kev tav use ot that 
portion of the data packet selected accorditii^ to the aulhen- 
luialion range narameter th3V fhe auiaeulicator tienerating 
method is described m Cictail cor exanspla, tn LVl^'M Hide.iii. 
(ccttJicniC. \-p*i graphN Stvtion4 7 Uic utiitnu^dior i<i 
scneraicd. tor iiislance, by compress.ing lile authssnlicaoon 
raii^e data bv a hasa tuncuon and escivpttttu the a)tnpres:«d 
data by the Q-jriimon key. riien the fiutheritjcator is added !o 
ihe mpiil data packet (,^41 and that pcsri ot tne auihenticator- 
adoeo data packet which is seiecteu ba.sed on the encryption 
range p,uameier is cncrvpted iisiog ihe shared encrvplion 
algontnoi and eticrvpuon key (S5i. focidentailv, in the ca.« 
of bksck encryptKm. paoams; is cameo out pnor to the 
encryption m ansoicipation of t,be .shortage ol data .tor Ihe 
fixed biocii fens-th (S()). 

[0052] In no 12 <hert ik =.hoAi dT exainpL it the 
coDtiauratioii ot sucu encrypted data. !ij ilus example the 



.luibeiiticator MAC is added to the input application dila 
1,1 D, aud iiie pofiion (payJoad) of the appheation data, 
except the header lIDH, and iiie aiiibenlicator MAC arc 
cncrypled. The .selectively encrypted data is prxwided to the 
lower iransport part 32, from which it .sen! to the olhcf 
communicatioij apparatus 40, 

[0053] llic; receivuig-side comtnunication ajsparams 40 
decodes the eaerypiied data ibllowiag the procedure teveise 
ro that tiescribed above, and ihe vaiidiiy of ihe received data 
is verified by use- tsf the data authctsiieator (code), That is, in 
the coiSimsmicaiion apparatus 40 in FIG, 7, the packet 
received from the ajmraunication apparatus 30 is input from 
the u-,ansport part 42 to the dccoding'veriiic-ition ptirt 43, and 
in iiiB dccodijigA'eriScatioa p.wi 43 the enciypted portion is 
-Ssk-ctiveSy decoded according to the shared encryption 
algorithm, ctiaypttoti key and range of encryption, atid ihe 
dat,^ authcmicator (code) -VIAC in the decoded data is U-sed 
to verify the validity of the header md the decoded payksad, 
tJial is.. She apphcatson dtita iti FIG. 12, The appheation data, 
if vaKd, is .stipplied to the appJicalion part 41. 

[0OS4] By such sharing of the range of encryption, it is 
passible to selectively encrypt part of ihc input data; for 
example, eacryptioa of only thai portiots of the input data 
whose security becomes an issue makes ihe workload lighter 
tisan it!: ibe case of encrj-pting the whole inpsti, data, and 
settles the .security issue, 'lire range of encryption caa be 
sha.fed sisnultancttusly with sharing of the other paraiiictci-s 
for cncrypitioa, aitd an increase in ilis workload iberefor is 
very slight. 

[0053] in particular, when the irrpul data (applicaiioi!)is an 
R7T packet as raetsiioned above, if the header portitm of tbf 
RTP packet is HOl encrypted, a Ui3P packet header ai)d aii IP 
packei header are added to the iibove header—- this provides 
for header compression, including the RTP packet, during 
transmission as is the ease with Secure RTP. Further, since 
the area of eacryTJtion can be set at the beginning of the 
sessioti through negotiations with the receiving side unlike 
in the case of Secure RTP, this scheme cm also bo applied 
versauly to other applicauoas than the RIP packet. 

[0056] Although in FIG. 11 the addition of the authents. 
caior IS followed bv cacrvpiion, it is also possrolc to 
aenerate the autlietitieator after encrv'ptioa {SS) and add the 
autfictticalor to the encrvpled pacicet t.S7) as depicted in 
FKx 53 III this V 1st It ih. r(.ci.i\ i^,side the verilwaoi n of 
the valiaitv ot the received oata iS followed bv decoding. 
Vt'bea padding (S3) is aecessarv. it tsrecedcs encrvplion (55). 

[0057] The flow of the above-dcscnbexi stkctivc security 
processina ls shown in i IG. 14. la whtcfs, upon mpui, ilieieto 
otdala (SI), the iransniitting-stde communication apparatus: 
shares parameters mdttattve or ice .seoiiting target of inc 
input data with the receivmg-stde comciumcation apparatus 
vsa the coijjmuntcation channel (S2); pertoraa siectiritv pto- 
ce,ssing cjf part of uie mput data based on tne shared sectinns; 
target parameters (5>3>; and transmits the input aata (S4). 

oo=;si ' ' Ab f \f.^t )niMi M 

[005<>] FIG. l.'i i1iij.strates a second embodiment of the 
presenl invention, fhis embodimeiil is adapted to be capable 
ol .supportmg the sesective encryption by exiending ihe fe^l. 
scheme depicted in I !.G, 5. The oarameter .shanng part 34 in 
the hrst emboaimfini hinher cornpiises; s fiaudshafce (Haud- 
&ha,iie) part .34a tor negotiating; wush the rsceivma-side 
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(xnnrawtikation apparatiis 40 about amheiitkation process- 
ing nncJ encfyplitiii/data aiiiiietiticatiou paraifsetefs; a change 
cipher fChangc Cipher) pnrt .^■W) for vaisdafiiig the encryp- 
Jiowciala authenSication paiamcters.; an akn (Akrt) pari Mc 
for indicaling an cveiu crrfir; a iirsi appiicatioR data pari 34a' 
for tiansparsisily shading and receiving ispper-layer appli- 
caiion rtaia, and a jkst record (Record) pan Me for sendi-ig 
anci receivjjsg protocols of the abow-mentiorsed tliree parts 
Ma, 34?j, 34c- atitl 34d via the lower layer part ftraiispott 
pari) 32. 

[(MWO] The llrsi record par! 34e uses, 3j> its protoail data 
foiTnat, the same formsi as that of she SSf.. record pari shown 
in FK;-. 6. The sh&ke-baad part Ma negoiiates mth the 
receiving-side commiiioicaiiof! apparatus 40 abotjS the 
eijcn/plioti/ciaia aiuhcnticaijon parajnetcrs (bat are used in 
the first rccon! pan 341"! and the second rewml part (erjcryp- 
tion-'auihenlicator adding pan) 33. And ihe chatigs cipher 
(Change t^ipher) part 346 vaiidates the cncryptjon/data 
au tbenlicatioa parameters of the iirst reaird part 34*? and lite 
second cecofd part 33, '{liat is. It starts and indicates, encryp- 
tion to ibe receiving side. To £bc fiisl record application data 
part 34f are input a proto«)l message of the haadshake part 
34(3 ajtd application data that does not necessitate itte 
seieclive encryption in the first appiication data part 34t;. 

[0061] The fransraisskuj and reception of appUcation data 
that necessitates selective encfyptton arc performed, inde- 
(jcntjcfjliy of the aiiovc-menlioned protocol data, by a sec 
oad record part, that is, bj'- the encryption/authenticator 
adding part 33, A second application data 37 is to iraaspar- 
ently send aod receive lije data packet of a higS-orcier second 
application part 3Xb to and frons the second recoai pari 33. 
Further, unlike the first rccoitl par! 34f? the second record 
part, that is, the eticryplton.' iiulheujucalor adding part 33 does 
not add a new header to the input data bttt performs the 
eiicryptfoti/autheniicaior gerjCfation proces-sing alone. The 
par.*me!ers &b ared by the first record part 34(? are nssd for the 
encryption..'data amheniicatlon proa-s-sing in ihe second 
record part 33. 'fhe eacrypiion.''data autheniication process- 
ing is the same as .in ibe first eiitbodinten!.. 

[00(52] Tlie handshake part 34f; starts the parameter shar- 
ing procedure using plaintext communicaison wth the 
receiving-side comariiuticalios apparatus 40, and may pro- 
tcci the ctstnmuntcatioR usiag .shared encryptiou/authentica- 
iion parameters haUway through the procedure among appli- 
cations an application data packet wbica is ijoi requitKd to 
is-ave the real tiiTic property and is not frttjueniiy sent, such 
as .HTTP, FTP, Telne! or RTSP (a proloco! for openisig the 
KTP session), is input front, a first application part 3.1 a via 
the lirst appUcation data part 34j^ to ibe first reajrd part 34i?, 
which encrypts the input packet in its entirety based o« the 
shared paiametcts ,ind adds the encrjipted packet with the 
iseadcf 20fl of iht record part as depicted in HG. 6, 
ihcicafier providing the packet as a record protocol packet to 
the traasport pari 32. lacidetttaiiy, the receivdng-.side com- 
tiiutiicatioii apparatus 40 ha.s the same consiniction as 
depicieti iii .FIG. i5 except ibat the encryption/authenticatof 
adding part 33, which is the second record part, is a 
decodi.ng''verilic3i!on part. 

[0063] '!T1!R!.> KMHODIMENT 

FIG, U iltiislraies a third embodiment o£ ibe 
prc.<ient inventwn. Tivis embodinient negotiates with the 
receiving-side via ihe tlr.sl application part 3 in as of RTSP 



or Hl^T? 10 share the encryption,'a«theaticalor adding 
parameter that are applied to the .ipphcatioii data of the 
second apphcation part 31fe. For exampk, encryption 
parameters in tl(.k S can be trais-smitted to the receiving-side 
apparatus 40 by encrypting them 5)y ihe public key of the 
rec8iYing-s.ide coctitnumcslion apparatus 40 attd tnsbcdding 
this encrypted paiameters in the protocol fricssage body. 

[006S] 1( IS also possible to prov ids both of the encryption/' 
authenticaior adding part and the t3ecaljng,'%'cr!fica!ion part 
in one cofjimujticatioti appiaratus. While the. a!>ove embodi- 
Hicni perfoims, for data .security, both of efiayptjon anrS data 
aiJtLienficator addition, only one of them may also he mi- 
Kzed. The rc,^peciive pans of the comniiinicalion appara- 
ttises 30 and 40 may tjc implemerited by exeat ting prograiais 
on a computer. 

EFFECT OF THE INVENTION 

[0M6] As described above, t he pre.seni invention provides 
security for a selecied portion of data, perttiits versatile 
tran.stnLsstati data protection unspeciiicto a p.uiictilar appli- 
cation, and enables header compressa'oti when cmpioyetl itt 
mobik comraumcations in parti.cidar. 

Wbat is dainsed is: 

1- A data-securing communication apparatus cosnpri-sitig; 

paratticttf sharing meat's for sharing parameter.s indica- 
tive of a securiiig target of input data wib a rcoeiving- 
side data-securing coj-uniunicassoa apparatus via a com- 
inuKication chsanel; and 

securing means for sciecuveiy securing a portion of said 
input data ba.sed on said shared parameters, 

2- The data-securing comauinication appa.ratus aa claitriw! 
in claim 1, which is further provided with means ibr 
determining said seaifing target in accordance with the kind 
(application) of the input data, 

3. The data-s(:ciifing communication .apparatus as claimed 
in claim 1 or 2, which is further provided with means for 
deterKiinitig .said securing target in accordance with the 
network to which said apparatus is connected, 

4. "(Tie data-seatring cooimunicaiion appaiattts as ckimed 
in any one of claijirs .1,2, and 3, wherein said secunng target 
is 5 target for enciyption, said receiving-side commynication 
.apparatus being a decoding appasatus and said secuting 
means being encryption means, 

5. The data-securing conimnnicatiou apparatus 3-s c'laimed 
in claim 4, wherein said input data is an R1T packet and said 
target for enciyplioa is data except an RTF header, 

6. Ttte data..«cairmgcoEatBunicauon apparatus as claimed 
in datm 4, wherein the cr.itcrioa for determining said target 
ftsr encryption is the transmission rate tjf the commanioatiots 
channel of said network. 

7. The data-securing commurctation apparatus as claimed 
in any one of claims 1, 2 and 3, wherein: said securing target 
is the range of auihenlicatiott of said itspui data; said 
receivjug-side data-sccuritig cotntnurac:ition .apparatus ,is a 
data veriijcatiott apparatus; .sad sectiring meaiis is means ibr 
calculating an auihenticatof froEO said range of autheutsca- 
!ion of said input data; and means for ouiputling ihe input 
data after adding thereto ssid autiierjlicalor. 

S. A data-sccuritig comtnutiicaiion apparatus comprisitig: 

parameter shafing means for sharing parameters indi&l- 
tive of a decoding target of received data mth a 
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' 1 IS nut sicJf Jal 1 ni. <. i!rinufin.->i! )n appj 
rams via a awjmumcatiDn chaaaek and 

kvo'iiUiiH-ir^sluf s-kLUi.! h uLt dill!. J trii in ^ ' sd)u 

y. A data-sKcitnng coaimunicaijojci apparatus cotapfisjag-. 

iTOciiu tif huii.^ i!iitii.iN ifiJi>-iti e ot th^. gt vi 
authenticaiion ot teceived data wirh auiheimcalor add- 
ing cevice oi a transfnntinss side via a comraumcauon 
k-hanri'-l; sicd 

vcTiiicalion means for veniywg ibc vaijctitv ot data a)ji- 
iWKis m said raijs^e ot axithenticatioe ot she received 
dm bv dM<t about said ranoe ot auifjemieaiioii and ao 
auihenticator amlajnet! m said recsived data according 
to satd parametirs. 

10 \ daia stLuang ui Tir^unn- !i>n m i > iti « rrtjinsin; 
tte steps of ; 

(;a ) shmaa, parameters indicative ot s target iot eacrvpUon 
ot inpiit data with a data accoding apparatus ol a 
receiving side via a ajmrnumtation channei; and 

(b) selectivelv eiurwtjiie a portiosi ot said mput data 
bassd on said shared parameters ano otitpuUmg tlie 
.lelectivelv eQcrvptcii data. 

11. I he data-seciirmg commumcatjoa metrstKi as claimed 
m claim 10, wjictem said mwsl data (S at; RH* pat;kcS and 
Mid st.kvli\e ri) rvptiij'i is pcuotiin' lor oata ''fi 
mV iscader of said RTP packet, 

12. A data-secunnii; commimication metnod compn.sins; 
the. .«eps ol: 

(at sharing parameters mdicaUve oi the lauue of authen- 
liciiion ol laput data with a data venSsfaiion apparatus 
via a cfjfnmiirat'ation chtmneh 



(OS caicutanng an amaeiiticatcir from isiai porttoo ot .<nH<3 
lopirt data wh.ica i.s specitied iJV said parameters: and 

it (-U'ptnuu aiO npu ma -ft jddin'^ thuKlo said 
aulhentjcasor. 

1.3. A datft-.'icciinim eommnmcation metnod aimpriRing 
itit sieps oi: 

{ a> sharing paramelers indjcauve ot a decodlOi? target of 
received tiata v^itU an encfvpiioj! apparatus oi a uans- 
finlticg side via a comrnumcatioii chatiaei: and 

{h} selectivelv decoduia a portion ot ttie received data 
based on. said shared parameters. 

14. .file method as clat-iiied ixi claija li. wbereiD said 
received data w an RTP packet snc said selective decoding 
IS performed for aata e.xcepi an RiP header oi said RiP 
packet. 

15. A aala-seciinnii cou!i»ts(Ucatiou appsrattis compnsmfi 
die steps oi; 

faj sliaiirig paratnete-rs indicative oi the range ot aiitheis- 
tication ot received data witb autheaticator addint; 
device of a tratismitting side vra a communicalioa 
chaarici; and 

i,b) vcntymg the validitv ot data contained in satd range 
of auihenticatiOi) of the received aata bv data aoout said 
range of atithenticauon and an aiithcntscaior contained 
m said received data according la said paramelers. 



